Hi All:
As I know, When calculate Public key in certificate, it's SHA1 value
is equal to Subject Key Identifier in certificate, and I verify this,
and found that some websites are follow this.
But when I go to www.google.com website, I find the leaf certificate
and intermediate certificate is ok,
Hi,
Does Openssl support IPv6 officially?.
Thanks Regards
Darshan
El día Wednesday, November 05, 2014 a las 08:28:40AM +, Mody, Darshan
(Darshan) escribió:
Hi,
Does Openssl support IPv6 officially?.
Thanks Regards
Darshan
Hi,
We are using openssl for our application servers with IPv6. It turned
out that the function BIO_set_conn_hostname() (and
On Wed, Nov 05, 2014 at 08:28:40AM +, Mody, Darshan (Darshan) wrote:
Hi,
Does Openssl support IPv6 officially?.
AFAIK the libssl and libcrypto libraries do not use sockets at all,
these are left to the applications/libraries using them.
So openssl does neither support ipv4 nor ipv6.
Hi
Can you please let me know if FTP service can be impacted by POODLE
vulnerability
Thanks Regards
Venkat
From: owner-openssl-us...@openssl.org On Behalf Of Marcus Meissner
Sent: Wednesday, November 05, 2014 04:10
On Wed, Nov 05, 2014 at 08:28:40AM +, Mody, Darshan (Darshan)
wrote:
Hi,
Does Openssl support IPv6 officially?.
AFAIK the libssl and libcrypto libraries do not use sockets
From: owner-openssl-us...@openssl.org On Behalf Of Jerry OELoo
Sent: Wednesday, November 05, 2014 03:11
But when I go to www.google.com website, I find the leaf certificate
and intermediate certificate is ok, but root CA certificate (GeoTrust
Global CA) is not.
snip
Public Key SHA1:
From: owner-openssl-us...@openssl.org On Behalf Of Amir Reda
Sent: Wednesday, November 05, 2014 02:42
1- i generate rsa key pairs and try to print it in a pem file but when i open
the file it was empty
You never close or even flush the file. openssl uses C I/O and C I/O by default
is
Jeffrey,
May I ask why you included no-ssl2 as an option to config?
Is only adding no-ssl3 not sufficient enough to fully disable SSLv3?
Thanks,
Phil
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Jeffrey Walton
Sent:
Thanks. I am still having issues with doing a debug. Mingw 32 with
only code blocks still does not work. As best I can tell this thing is
made to not look inside. Give me an idea on this. There is no way to
tell how private keys are made.
Dave
On 11/4/2014 7:13 AM, Steve Marquess wrote:
I
On Wed, Nov 05, 2014 at 12:18:05PM +, Philip Bellino wrote:
Jeffrey,
May I ask why you included no-ssl2 as an option to config?
Is only adding no-ssl3 not sufficient enough to fully disable SSLv3?
No. If you leave SSLv2 enabled, and disable SSLv3, then in many
cases you always get SSLv2!
On 05/11/2014 09:11, Jerry OELoo wrote:
Hi All:
As I know, When calculate Public key in certificate, it's SHA1 value
is equal to Subject Key Identifier in certificate, and I verify this,
and found that some websites are follow this.
But when I go to www.google.com website, I find the leaf
I'm trying to install the 1.0.1j version on a Windows 2003 server
(32-bit), with MS Visual Studio 6.0, nasm 2.11.05, and ActiveState perl
v5.16.3.
Steps involved include running the VCVARS21.BAT script, 'perl Configure
VC-WIN32 --prefix=c:\openssl-1.0.1j', 'ms\do_nasm.bat', and finally
--On November 5, 2014 at 10:10:26 AM +0100 Marcus Meissner
meiss...@suse.de wrote:
On Wed, Nov 05, 2014 at 08:28:40AM +, Mody, Darshan (Darshan) wrote:
Hi,
Does Openssl support IPv6 officially?.
AFAIK the libssl and libcrypto libraries do not use sockets at all,
these are left to
I'm trying to install the 1.0.1j version on a Windows 2003 server (32-bit),
with MS Visual Studio 6.0, nasm 2.11.05, and ActiveState perl v5.16.3.
Steps involved include running the VCVARS21.BAT script, 'perl Configure
VC-WIN32 --prefix=c:\openssl-1.0.1j', 'ms\do_nasm.bat', and finally 'nmake
-f
On Wed, Nov 05, 2014 at 03:57:48PM +0530, Venkat V wrote:
Hi
Can you please let me know if FTP service can be impacted by POODLE
vulnerability
The attack depends on being able to let the client connect
multiple times and have control over part of the plain text.
In theory a browser could
Sorry, typo - s/b 'VCVARS32.bat'
So are you implying that MS Visual Studio 6.0 might be the issue in that
it might not have built-in code with IPv6 headers? Haven't the IPv6
pieces of the OpenSSL code been around for a while? I know I saw posts
regarding it from several years back in the
VS6 essentially became obsolete in 2002, with the release of Visual Studio 7
.NET.
IIRC, IPv6 was still in its infancy.
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of neil carter
Sent: Wednesday, November 05, 2014 10:28 AM
To: Walter H.;
On 05.11.2014 18:47, neil carter wrote:
I'm trying to install the 1.0.1j version on a Windows 2003 server
(32-bit), with MS Visual Studio 6.0, nasm 2.11.05, and ActiveState
perl v5.16.3.
Steps involved include running the VCVARS21.BAT script, ' perl
Configure VC-WIN32
On 05.11.2014 19:27, neil carter wrote:
Sorry, typo - s/b 'VCVARS32.bat'
So are you implying that MS Visual Studio 6.0 might be the issue in
that it might not have built-in code with IPv6 headers?
yes, definitly
WINSOCK2.H contains this:
/*
* Constants and structures defined by the
So then why was 1.0.1g able to compile without these errors?
On 11/5/2014 12:48 PM, Walter H. wrote:
On 05.11.2014 19:27, neil carter wrote:
Sorry, typo - s/b 'VCVARS32.bat'
So are you implying that MS Visual Studio 6.0 might be the issue in
that it might not have built-in code with IPv6
RFC 790 defines IPv4, not IPv6.
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Walter H.
Sent: Wednesday, November 05, 2014 10:49 AM
To: neil carter
Cc: openssl-users@openssl.org
Subject: Re: 1.0.1j on Windows32 shows error C2027: use of undefined
El día Wednesday, November 05, 2014 a las 10:10:26AM +0100, Marcus Meissner
escribió:
On Wed, Nov 05, 2014 at 08:28:40AM +, Mody, Darshan (Darshan) wrote:
Hi,
Does Openssl support IPv6 officially?.
AFAIK the libssl and libcrypto libraries do not use sockets at all,
these are left
It boggles the mind that to this day that patch has not been integrated in the
5 years since the bug was opened.
So many things about openssl can boggle the mind :)
In this particular case, I think the issue is that adding things to
s_client/s_server apps isn't really enough to enable IPv6
Right, that’s the main point. SKI is just an opaque identifier. It “used to”
“mostly” be SHA1 of the key, but there was never any requirement that it MUST
be so.
--
Principal Security Engineer, Akamai Technologies
IM: rs...@jabber.memailto:rs...@jabber.me Twitter: RichSalz
Maybe you forgot to run the batch file that sets the
INCLUDE and LIB environmentvariables to prepend later
VC 6.0 compatible SDK headers before,such as those in
the July 2002 Platform SDK.
The copyright message quoted by Walter H. is just that,
acopyright message acknowledging that some of the
On Wed, Nov 05, 2014 at 02:07:16PM -0500, Salz, Rich wrote:
It boggles the mind that to this day that patch has not been integrated in
the
5 years since the bug was opened.
So many things about openssl can boggle the mind :)
In this particular case, I think the issue is that adding
On Wed, Nov 05, 2014 at 08:45:55AM -0800, Quanah Gibson-Mount wrote:
--On November 5, 2014 at 10:10:26 AM +0100 Marcus Meissner
meiss...@suse.de wrote:
On Wed, Nov 05, 2014 at 08:28:40AM +, Mody, Darshan (Darshan) wrote:
Hi,
Does Openssl support IPv6 officially?.
AFAIK the
I'm trying to install the 1.0.1j version on a Windows 2003 server
(32-bit), with MS Visual Studio 6.0, nasm 2.11.05, and ActiveState perl
v5.16.3.
Steps involved include running the VCVARS21.BAT script, 'perl Configure
VC-WIN32 --prefix=c:\openssl-1.0.1j', 'ms\do_nasm.bat', and finally
Okay, so what magic script is this? Is it available in MS VS 6.0?
Sorry, not a developer so part of what everyone is saying is beyond me.
I ran the VCVARS32.bat script. Previously that's all I've had to do to
prepare the environment for installing OpenSSL.
Again, this all worked with
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-
us...@openssl.org] On Behalf Of Kurt Roeckx
Sent: Wednesday, 05 November, 2014 13:05
On Wed, Nov 05, 2014 at 03:57:48PM +0530, Venkat V wrote:
Can you please let me know if FTP service can be impacted by POODLE
vulnerability
Again, this all worked with 1.0.1g and that also included IPv6 support,
didn't it? I'm trying to understand this.
No it didn't. Or perhaps more accurately: openssl code has not changed in
regards to ipv4/ipv6
--
Principal Security Engineer, Akamai Technologies
IM: rs...@jabber.me
Let me re-phrase this. The 1.0.1g version of OpenSSL compiled without
errors in this same environment, using these same commands.
On 11/5/2014 2:25 PM, Salz, Rich wrote:
Again, this all worked with 1.0.1g and that also included IPv6 support, didn't
it? I'm trying to understand this.
No it
Are you absolutely positive that you did not enable ipv6 or fail to disable
ipv6, like ./config no-ipv6 ?
--
Principal Security Engineer, Akamai Technologies
IM: rs...@jabber.memailto:rs...@jabber.me Twitter: RichSalz
I was unaware that option existed until you mentioned it.
On 11/5/2014 2:32 PM, Salz, Rich wrote:
Are you absolutely positive that you did not enable ipv6 or fail to
disable ipv6, like ./config no-ipv6 ?
--
Principal Security Engineer, Akamai Technologies
IM: rs...@jabber.me
I just ran the commands again, adding the no-ipv6 to the 'perl
Configure' line and received the exact same errors.
On 11/5/2014 2:32 PM, Salz, Rich wrote:
Are you absolutely positive that you did not enable ipv6 or fail to
disable ipv6, like ./config no-ipv6 ?
--
Principal Security
Just following up on this I notice that support for v1.1 and v1.2 were added in:
Changes between 1.0.0h and 1.0.1 [14 Mar 2012]
We upgraded to 1.0.0o for our server recently and in our SSLv3 disabling
testing, we discovered that the linux build appears to support 1.1 and 1.2
(using the
(Lets keep this on list)
The headers that shipped with Visual Studio 6.0 did not cover the
IPv6 parts of Winsock2.They were however included in the Visual
Studio 6.0 compatible platform SDKsreleasedlater, such as the
ones from at least July 2002 to sometime in 2003 or 2004. The
April2005
38 matches
Mail list logo